CVE-2023-3469 Cross-site Scripting (XSS) - Reflected in thorsten/phpmyfaq

Cross-site Scripting XSS - Reflected in GitHub repository thorsten/phpmyfaq prior to 3.2.0-beta.2...

Spina Cross-site Scripting vulnerability

Cross-site Scripting XSS - Stored in GitHub repository spinacms/spina prior to 2.15.1...

CVE-2023-3445

Cross-site Scripting XSS - Stored in GitHub repository spinacms/spina prior to 2.15.1...

CVE-2023-3445 Cross-site Scripting (XSS) - Stored in spinacms/spina

Cross-site Scripting XSS - Stored in GitHub repository spinacms/spina prior to 2.15.1...

CVE-2023-3445 Cross-site Scripting (XSS) - Stored in spinacms/spina

Cross-site Scripting XSS - Stored in GitHub repository spinacms/spina prior to 2.15.1...

CVE-2023-3445 Cross-site Scripting (XSS) - Stored in spinacms/spina

Cross-site Scripting XSS - Stored in GitHub repository spinacms/spina prior to 2.15.1...

PT-2023-24885 · Spina · Spina

Name of the Vulnerable Software and Affected Versions: spina versions prior to 2.15.1 Description: The issue is related to Cross-site Scripting XSS - Stored, which affects the GitHub repository spinacms/spina. Recommendations: For versions prior to 2.15.1, update to version 2.15.1 or later to...

DEBIAN-CVE-2023-3432

Server-Side Request Forgery SSRF in GitHub repository plantuml/plantuml prior to 1.2023.9...

UBUNTU-CVE-2023-3432

Server-Side Request Forgery SSRF in GitHub repository plantuml/plantuml prior to 1.2023.9...

CVE-2023-3432

Server-Side Request Forgery SSRF in GitHub repository plantuml/plantuml prior to 1.2023.9...

CVE-2023-3423

Weak Password Requirements in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v 1.2.0...

Default credentials

Weak Password Requirements in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v 1.2.0...

CVE-2023-3423 Weak Password Requirements in cloudexplorer-dev/cloudexplorer-lite

Weak Password Requirements in GitHub repository cloudexplorer-dev/cloudexplorer-lite prior to v 1.2.0...

CVE-2023-3423

CVE-2023-3423 affects CloudExplorer Lite prior to version 1.2.0. The root cause described across sources is weak/absent password validation on the backend, which can allow weak passwords or guessing attempts to compromise accounts. Public references (NVD, Red Hat, OSV, etc.) consistently cite wea...

CVE-2023-3431

Improper Access Control in GitHub repository plantuml/plantuml prior to 1.2023.9...

CVE-2023-3398

Denial of Service in GitHub repository jgraph/drawio prior to 18.1.3...

CVE-2023-3398 Denial of Service in jgraph/drawio

Denial of Service in GitHub repository jgraph/drawio prior to 18.1.3...

CVE-2023-3398 Denial of Service in jgraph/drawio

Denial of Service in GitHub repository jgraph/drawio prior to 18.1.3...

Code injection

Code Injection in GitHub repository fossbilling/fossbilling prior to 0.5.1...

CVE-2023-3393

CVE-2023-3393 affects fossbilling/fossbilling prior to 0.5.1. The vulnerability is described as a code injection issue in the GitHub repository, with high impact (confidentiality, integrity, and availability all affected) and network attack with no user interaction. Red Hat and NVD entries corrob...